oauth-flow-architect
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is entirely instructional and serves as a reference guide for authentication implementation without performing any automated actions.\n- [EXTERNAL_DOWNLOADS]: The code snippets reference official OAuth and OIDC endpoints for trusted providers (e.g., Google, Microsoft, Apple). These are documented neutrally for configuration purposes and follow standard protocols.\n- [CREDENTIALS_UNSAFE]: No real secrets are included; the skill uses placeholders (e.g., 'xxx') and provides guidance on using encryption and secrets management for production use.\n- [PROMPT_INJECTION]: The content is purely technical and does not include instructions intended to bypass safety filters or manipulate agent behavior.\n- [DATA_EXFILTRATION]: There are no indicators of unauthorized data collection or exfiltration. Network requests shown are confined to standard OAuth protocol exchanges.
Audit Metadata